http://bugs.wireshark.org/bugzilla/show_bug.cgi?id=1723
Summary: Enhamcement of text2cap for parsing flexibility
Product: Wireshark
Version: SVN
Platform: PC
OS/Version: Windows XP
Status: NEW
Severity: Enhancement
Priority: Medium
Component: Extras
AssignedTo: wireshark-bugs@xxxxxxxxxxxxx
ReportedBy: jacyu@xxxxxxxxxxxxxxxxx
Build Information:
Paste the COMPLETE build information from "Help->About Wireshark", "wireshark
-v", or "tshark -v".
--
1. Support non-delimiter date format. A lot of packet trace or analysis, syslog
tools use this format (e.g. 20070413 = April 13th, 2007). Original version will
treat it as a address offset and make parsing confused. So I add some checking
to identify the date and this format can be accepted.
2. Make text message be parsed more precisely. The current version will be
confused and write an error packet if a comment line has strings matching to
offset patterns. The enhanced state machine will add some check to discard
these strings of this case.
3. Add ASCII print identification. Many tools used to append ASCII print of the
packet after Hex print. This enhancement will identify the 2-digits string is a
true packet byte or not. Take line “000000 61 62 20 63 64 20 ab cd ab
cd ..”for example, the end part “ab cd ..” is the ASCII print of hex
print "61 62 20 63 64 20 ab ab". In the previous version of text2pcap the ASCII
part “ab cd ” will be parsed as byte token and the packet will have extra 2
btyes of garbage content. This enhancement will pick it out and roll back if
extra bytes are parsed.
--
Configure bugmail: http://bugs.wireshark.org/bugzilla/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.